34c564c78cef958f7b977d1f5d8663c7b5da0852aea6661d77029af8ffe5a713

Analysis

max time kernel
61s
max time network
143s
platform
windows10-2004_x64
resource
win10v2004-20220812-en
resource tags

arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
submitted
06/10/2022, 16:11

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll
Size

136KB
MD5

39a19a3c24e6aa2c23c65622adbcaccb
SHA1

8804d9c3e451f6f2869d6b4c0a820ef98d287112
SHA256

34c564c78cef958f7b977d1f5d8663c7b5da0852aea6661d77029af8ffe5a713
SHA512

a1f68975b1bbc820ee4bab82ec40c90610bbfef0ee6b151ee76f7dd47ec021c12a5a52719fa602a3fdcb4c509b6b42d1092f51f1e5e5f88dc9e738f0fb74f5bd
SSDEEP

3072:Vi60vdATaEtRzQUtsA23Jpp3q8TBfVjYSw:V2AOMRzQWp23JX3q8TBtESw

Score

1^/10

Malware Config

Signatures

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 4628 wrote to memory of 636	4628	rundll32.exe	82
PID 4628 wrote to memory of 636	4628	rundll32.exe	82
PID 4628 wrote to memory of 636	4628	rundll32.exe	82
PID 636 wrote to memory of 3208	636	rundll32.exe	83
PID 636 wrote to memory of 3208	636	rundll32.exe	83
PID 636 wrote to memory of 3208	636	rundll32.exe	83
PID 3208 wrote to memory of 396	3208	rundll32.exe	84
PID 3208 wrote to memory of 396	3208	rundll32.exe	84
PID 3208 wrote to memory of 396	3208	rundll32.exe	84
PID 396 wrote to memory of 3056	396	rundll32.exe	85
PID 396 wrote to memory of 3056	396	rundll32.exe	85
PID 396 wrote to memory of 3056	396	rundll32.exe	85
PID 3056 wrote to memory of 5084	3056	rundll32.exe	86
PID 3056 wrote to memory of 5084	3056	rundll32.exe	86
PID 3056 wrote to memory of 5084	3056	rundll32.exe	86
PID 5084 wrote to memory of 4120	5084	rundll32.exe	87
PID 5084 wrote to memory of 4120	5084	rundll32.exe	87
PID 5084 wrote to memory of 4120	5084	rundll32.exe	87
PID 4120 wrote to memory of 4424	4120	rundll32.exe	88
PID 4120 wrote to memory of 4424	4120	rundll32.exe	88
PID 4120 wrote to memory of 4424	4120	rundll32.exe	88
PID 4424 wrote to memory of 1624	4424	rundll32.exe	89
PID 4424 wrote to memory of 1624	4424	rundll32.exe	89
PID 4424 wrote to memory of 1624	4424	rundll32.exe	89
PID 1624 wrote to memory of 4924	1624	rundll32.exe	92
PID 1624 wrote to memory of 4924	1624	rundll32.exe	92
PID 1624 wrote to memory of 4924	1624	rundll32.exe	92
PID 4924 wrote to memory of 2032	4924	rundll32.exe	90
PID 4924 wrote to memory of 2032	4924	rundll32.exe	90
PID 4924 wrote to memory of 2032	4924	rundll32.exe	90
PID 2032 wrote to memory of 5072	2032	rundll32.exe	91
PID 2032 wrote to memory of 5072	2032	rundll32.exe	91
PID 2032 wrote to memory of 5072	2032	rundll32.exe	91
PID 5072 wrote to memory of 4892	5072	rundll32.exe	93
PID 5072 wrote to memory of 4892	5072	rundll32.exe	93
PID 5072 wrote to memory of 4892	5072	rundll32.exe	93
PID 4892 wrote to memory of 4792	4892	rundll32.exe	94
PID 4892 wrote to memory of 4792	4892	rundll32.exe	94
PID 4892 wrote to memory of 4792	4892	rundll32.exe	94
PID 4792 wrote to memory of 1740	4792	rundll32.exe	95
PID 4792 wrote to memory of 1740	4792	rundll32.exe	95
PID 4792 wrote to memory of 1740	4792	rundll32.exe	95
PID 1740 wrote to memory of 5044	1740	rundll32.exe	96
PID 1740 wrote to memory of 5044	1740	rundll32.exe	96
PID 1740 wrote to memory of 5044	1740	rundll32.exe	96
PID 5044 wrote to memory of 4500	5044	rundll32.exe	97
PID 5044 wrote to memory of 4500	5044	rundll32.exe	97
PID 5044 wrote to memory of 4500	5044	rundll32.exe	97
PID 4500 wrote to memory of 2576	4500	rundll32.exe	98
PID 4500 wrote to memory of 2576	4500	rundll32.exe	98
PID 4500 wrote to memory of 2576	4500	rundll32.exe	98
PID 2576 wrote to memory of 1204	2576	rundll32.exe	99
PID 2576 wrote to memory of 1204	2576	rundll32.exe	99
PID 2576 wrote to memory of 1204	2576	rundll32.exe	99
PID 1204 wrote to memory of 4184	1204	rundll32.exe	100
PID 1204 wrote to memory of 4184	1204	rundll32.exe	100
PID 1204 wrote to memory of 4184	1204	rundll32.exe	100
PID 4184 wrote to memory of 5048	4184	rundll32.exe	101
PID 4184 wrote to memory of 5048	4184	rundll32.exe	101
PID 4184 wrote to memory of 5048	4184	rundll32.exe	101
PID 5048 wrote to memory of 4828	5048	rundll32.exe	102
PID 5048 wrote to memory of 4828	5048	rundll32.exe	102
PID 5048 wrote to memory of 4828	5048	rundll32.exe	102
PID 4828 wrote to memory of 2432	4828	rundll32.exe	103

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
1⤵
- Suspicious use of WriteProcessMemory
PID:4628
- C:\Windows\SysWOW64\rundll32.exe
  rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
  2⤵
  - Suspicious use of WriteProcessMemory
  PID:636
- - C:\Windows\SysWOW64\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
    3⤵
    - Suspicious use of WriteProcessMemory
    PID:3208
  - - C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
      4⤵
      Suspicious use of WriteProcessMemory
      PID:396
    - - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        5⤵
        Suspicious use of WriteProcessMemory
        
        PID:3056
      - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        6⤵
        Suspicious use of WriteProcessMemory
        
        PID:5084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        7⤵
        Suspicious use of WriteProcessMemory
        
        PID:4120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        8⤵
        Suspicious use of WriteProcessMemory
        
        PID:4424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        9⤵
        Suspicious use of WriteProcessMemory
        
        PID:1624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        10⤵
        Suspicious use of WriteProcessMemory
        
        PID:4924

C:\Windows\SysWOW64\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
1⤵
- Suspicious use of WriteProcessMemory
PID:2032
- C:\Windows\SysWOW64\rundll32.exe
  rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
  2⤵
  - Suspicious use of WriteProcessMemory
  PID:5072
- - C:\Windows\SysWOW64\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
    3⤵
    - Suspicious use of WriteProcessMemory
    PID:4892
  - - C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
      4⤵
      Suspicious use of WriteProcessMemory
      PID:4792
    - - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        5⤵
        Suspicious use of WriteProcessMemory
        
        PID:1740
      - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        6⤵
        Suspicious use of WriteProcessMemory
        
        PID:5044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        7⤵
        Suspicious use of WriteProcessMemory
        
        PID:4500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        8⤵
        Suspicious use of WriteProcessMemory
        
        PID:2576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        9⤵
        Suspicious use of WriteProcessMemory
        
        PID:1204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        10⤵
        Suspicious use of WriteProcessMemory
        
        PID:4184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        11⤵
        Suspicious use of WriteProcessMemory
        
        PID:5048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        12⤵
        Suspicious use of WriteProcessMemory
        
        PID:4828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        13⤵
        
        PID:2432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        14⤵
        
        PID:1800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        15⤵
        
        PID:4204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        16⤵
        
        PID:2400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        17⤵
        
        PID:2624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        18⤵
        
        PID:388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        19⤵
        
        PID:1460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        20⤵
        
        PID:32
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        21⤵
        
        PID:204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        22⤵
        
        PID:5004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        23⤵
        
        PID:2228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        24⤵
        
        PID:1900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        25⤵
        
        PID:3716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        26⤵
        
        PID:2172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        27⤵
        
        PID:1400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        28⤵
        
        PID:3240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        29⤵
        
        PID:3580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        30⤵
        
        PID:3592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        31⤵
        
        PID:4704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        32⤵
        
        PID:3604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        33⤵
        
        PID:3672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        34⤵
        
        PID:4348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        35⤵
        
        PID:3176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        36⤵
        
        PID:3720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        37⤵
        
        PID:1452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        38⤵
        
        PID:4688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        39⤵
        
        PID:4008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        40⤵
        
        PID:3140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        41⤵
        
        PID:1592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        42⤵
        
        PID:1728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        43⤵
        
        PID:1396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        44⤵
        
        PID:3364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        45⤵
        
        PID:1448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        46⤵
        
        PID:3232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        47⤵
        
        PID:4420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        48⤵
        
        PID:3968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        49⤵
        
        PID:1620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        50⤵
        
        PID:4172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        51⤵
        
        PID:1836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        52⤵
        
        PID:4556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        53⤵
        
        PID:1036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        54⤵
        
        PID:4056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        55⤵
        
        PID:4724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        56⤵
        
        PID:3296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        57⤵
        
        PID:3496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        58⤵
        
        PID:3488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        59⤵
        
        PID:3012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        60⤵
        
        PID:4048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        61⤵
        
        PID:2192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        62⤵
        
        PID:1340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        63⤵
        
        PID:5108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        64⤵
        
        PID:4776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        65⤵
        
        PID:4140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        66⤵
        
        PID:3872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        67⤵
        
        PID:2704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        68⤵
        
        PID:1636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        69⤵
        
        PID:2420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        70⤵
        
        PID:2088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        71⤵
        
        PID:2328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        72⤵
        
        PID:3132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        73⤵
        
        PID:4680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        74⤵
        
        PID:2520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        75⤵
        
        PID:1568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        76⤵
        
        PID:3972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        77⤵
        
        PID:4068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        78⤵
        
        PID:768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        79⤵
        
        PID:2468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        80⤵
        
        PID:384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        81⤵
        
        PID:632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        82⤵
        
        PID:1924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        83⤵
        
        PID:4872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        84⤵
        
        PID:3676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        85⤵
        
        PID:4740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        86⤵
        
        PID:1344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        87⤵
        
        PID:2816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        88⤵
        
        PID:224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        89⤵
        
        PID:4576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        90⤵
        
        PID:1480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        91⤵
        
        PID:1048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        92⤵
        
        PID:5068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        93⤵
        
        PID:4600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        94⤵
        
        PID:3524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        95⤵
        
        PID:1384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        96⤵
        
        PID:5132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        97⤵
        
        PID:5144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        98⤵
        
        PID:5156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        99⤵
        
        PID:5172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        100⤵
        
        PID:5184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        101⤵
        
        PID:5204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        102⤵
        
        PID:5216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        103⤵
        
        PID:5228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        104⤵
        
        PID:5244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        105⤵
        
        PID:5260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        106⤵
        
        PID:5276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        107⤵
        
        PID:5292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        108⤵
        
        PID:5308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        109⤵
        
        PID:5320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        110⤵
        
        PID:5340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        111⤵
        
        PID:5356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        112⤵
        
        PID:5372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        113⤵
        
        PID:5388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        114⤵
        
        PID:5404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        115⤵
        
        PID:5420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        116⤵
        
        PID:5436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        117⤵
        
        PID:5452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        118⤵
        
        PID:5464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        119⤵
        
        PID:5480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        120⤵
        
        PID:5496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        121⤵
        
        PID:5512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        122⤵
        
        PID:5528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        123⤵
        
        PID:5556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        124⤵
        
        PID:5576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        125⤵
        
        PID:5604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        126⤵
        
        PID:5632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        127⤵
        
        PID:5648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        128⤵
        
        PID:5676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        129⤵
        
        PID:5696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        130⤵
        
        PID:5728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        131⤵
        
        PID:5740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        132⤵
        
        PID:5760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        133⤵
        
        PID:5776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        134⤵
        
        PID:5796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        135⤵
        
        PID:5816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        136⤵
        
        PID:5852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        137⤵
        
        PID:5876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        138⤵
        
        PID:5892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        139⤵
        
        PID:5908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        140⤵
        
        PID:5928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        141⤵
        
        PID:5948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        142⤵
        
        PID:5964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        143⤵
        
        PID:5980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        144⤵
        
        PID:6004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        145⤵
        
        PID:6020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        146⤵
        
        PID:6044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        147⤵
        
        PID:6060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        148⤵
        
        PID:6076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        149⤵
        
        PID:6092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        150⤵
        
        PID:6116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        151⤵
        
        PID:6132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        152⤵
        
        PID:4180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        153⤵
        
        PID:776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        154⤵
        
        PID:648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        155⤵
        
        PID:3572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        156⤵
        
        PID:4516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        157⤵
        
        PID:4856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        158⤵
        
        PID:1644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        159⤵
        
        PID:2628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        160⤵
        
        PID:4192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        161⤵
        
        PID:2980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        162⤵
        
        PID:6156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        163⤵
        
        PID:6172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        164⤵
        
        PID:6188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        165⤵
        
        PID:6204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        166⤵
        
        PID:6216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        167⤵
        
        PID:6228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        168⤵
        
        PID:6240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        169⤵
        
        PID:6256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        170⤵
        
        PID:6268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        171⤵
        
        PID:6280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        172⤵
        
        PID:6292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        173⤵
        
        PID:6304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        174⤵
        
        PID:6316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        175⤵
        
        PID:6328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        176⤵
        
        PID:6340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        177⤵
        
        PID:6356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        178⤵
        
        PID:6368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        179⤵
        
        PID:6384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        180⤵
        
        PID:6400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        181⤵
        
        PID:6416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        182⤵
        
        PID:6432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        183⤵
        
        PID:6448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        184⤵
        
        PID:6464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        185⤵
        
        PID:6480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        186⤵
        
        PID:6496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        187⤵
        
        PID:6512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        188⤵
        
        PID:6528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        189⤵
        
        PID:6544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        190⤵
        
        PID:6560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        191⤵
        
        PID:6576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        192⤵
        
        PID:6592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        193⤵
        
        PID:6608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        194⤵
        
        PID:6624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        195⤵
        
        PID:6636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        196⤵
        
        PID:6652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        197⤵
        
        PID:6664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        198⤵
        
        PID:6676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        199⤵
        
        PID:6692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        200⤵
        
        PID:6704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        201⤵
        
        PID:6720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        202⤵
        
        PID:6736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        203⤵
        
        PID:6752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        204⤵
        
        PID:6768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        205⤵
        
        PID:6784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        206⤵
        
        PID:6800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        207⤵
        
        PID:6812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        208⤵
        
        PID:6828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        209⤵
        
        PID:6844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        210⤵
        
        PID:6856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        211⤵
        
        PID:6868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        212⤵
        
        PID:6888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        213⤵
        
        PID:6900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        214⤵
        
        PID:6916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        215⤵
        
        PID:6928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        216⤵
        
        PID:6944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        217⤵
        
        PID:6960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        218⤵
        
        PID:6972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        219⤵
        
        PID:6988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        220⤵
        
        PID:7000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        221⤵
        
        PID:7016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        222⤵
        
        PID:7032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        223⤵
        
        PID:7044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        224⤵
        
        PID:7060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        225⤵
        
        PID:7072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        226⤵
        
        PID:7084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        227⤵
        
        PID:7100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        228⤵
        
        PID:7112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        229⤵
        
        PID:7124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        230⤵
        
        PID:7144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        231⤵
        
        PID:7160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        232⤵
        
        PID:3860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        233⤵
        
        PID:4220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        234⤵
        
        PID:1656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        235⤵
        
        PID:4616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        236⤵
        
        PID:1100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        237⤵
        
        PID:7180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        238⤵
        
        PID:7200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        239⤵
        
        PID:7216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        240⤵
        
        PID:7228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        241⤵
        
        PID:7248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        242⤵
        
        PID:7260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        243⤵
        
        PID:7276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        244⤵
        
        PID:7292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        245⤵
        
        PID:7308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        246⤵
        
        PID:7320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        247⤵
        
        PID:7340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        248⤵
        
        PID:7352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        249⤵
        
        PID:7368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        250⤵
        
        PID:7384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        251⤵
        
        PID:7396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        252⤵
        
        PID:7408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        253⤵
        
        PID:7424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        254⤵
        
        PID:7440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        255⤵
        
        PID:7456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        256⤵
        
        PID:7472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        257⤵
        
        PID:7488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        258⤵
        
        PID:7500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        259⤵
        
        PID:7516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        260⤵
        
        PID:7528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        261⤵
        
        PID:7544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        262⤵
        
        PID:7564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        263⤵
        
        PID:7580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        264⤵
        
        PID:7596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        265⤵
        
        PID:7612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        266⤵
        
        PID:7624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        267⤵
        
        PID:7640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        268⤵
        
        PID:7652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        269⤵
        
        PID:7672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        270⤵
        
        PID:7684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        271⤵
        
        PID:7704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        272⤵
        
        PID:7716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        273⤵
        
        PID:7732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        274⤵
        
        PID:7744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        275⤵
        
        PID:7760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        276⤵
        
        PID:7772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        277⤵
        
        PID:7784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        278⤵
        
        PID:7800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        279⤵
        
        PID:7816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        280⤵
        
        PID:7832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        281⤵
        
        PID:7848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        282⤵
        
        PID:7864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        283⤵
        
        PID:7880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        284⤵
        
        PID:7896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        285⤵
        
        PID:7912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        286⤵
        
        PID:7924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        287⤵
        
        PID:7940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        288⤵
        
        PID:7956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        289⤵
        
        PID:7968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        290⤵
        
        PID:7984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        291⤵
        
        PID:8000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        292⤵
        
        PID:8012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        293⤵
        
        PID:8028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        294⤵
        
        PID:8040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        295⤵
        
        PID:8056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        296⤵
        
        PID:8072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        297⤵
        
        PID:8088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        298⤵
        
        PID:8100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        299⤵
        
        PID:8120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        300⤵
        
        PID:8136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        301⤵
        
        PID:8152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        302⤵
        
        PID:8164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        303⤵
        
        PID:8184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        304⤵
        
        PID:2996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        305⤵
        
        PID:8208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        306⤵
        
        PID:8220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        307⤵
        
        PID:8236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        308⤵
        
        PID:8252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        309⤵
        
        PID:8268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        310⤵
        
        PID:8284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        311⤵
        
        PID:8296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        312⤵
        
        PID:8308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        313⤵
        
        PID:8324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        314⤵
        
        PID:8336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        315⤵
        
        PID:8352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        316⤵
        
        PID:8368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        317⤵
        
        PID:8384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        318⤵
        
        PID:8396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        319⤵
        
        PID:8408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        320⤵
        
        PID:8424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        321⤵
        
        PID:8440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        322⤵
        
        PID:8452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        323⤵
        
        PID:8468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        324⤵
        
        PID:8488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        325⤵
        
        PID:8504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        326⤵
        
        PID:8520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        327⤵
        
        PID:8536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        328⤵
        
        PID:8552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        329⤵
        
        PID:8564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        330⤵
        
        PID:8584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        331⤵
        
        PID:8612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        332⤵
        
        PID:8636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        333⤵
        
        PID:8672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        334⤵
        
        PID:8704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        335⤵
        
        PID:8732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        336⤵
        
        PID:8772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        337⤵
        
        PID:8788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        338⤵
        
        PID:8812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        339⤵
        
        PID:8836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        340⤵
        
        PID:8852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        341⤵
        
        PID:8868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        342⤵
        
        PID:8884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        343⤵
        
        PID:8900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        344⤵
        
        PID:8916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        345⤵
        
        PID:8936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        346⤵
        
        PID:8964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        347⤵
        
        PID:8980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        348⤵
        
        PID:8992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        349⤵
        
        PID:9008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        350⤵
        
        PID:9020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        351⤵
        
        PID:9040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        352⤵
        
        PID:9052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        353⤵
        
        PID:9068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        354⤵
        
        PID:9080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        355⤵
        
        PID:9100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        356⤵
        
        PID:9112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        357⤵
        
        PID:9128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        358⤵
        
        PID:9140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        359⤵
        
        PID:9152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        360⤵
        
        PID:9172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        361⤵
        
        PID:9188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        362⤵
        
        PID:9200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        363⤵
        
        PID:8604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        364⤵
        
        PID:9228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        365⤵
        
        PID:9244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        366⤵
        
        PID:9256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        367⤵
        
        PID:9272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        368⤵
        
        PID:9284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        369⤵
        
        PID:9300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        370⤵
        
        PID:9316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        371⤵
        
        PID:9328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        372⤵
        
        PID:9340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        373⤵
        
        PID:9360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        374⤵
        
        PID:9376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        375⤵
        
        PID:9392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        376⤵
        
        PID:9404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        377⤵
        
        PID:9420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        378⤵
        
        PID:9436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        379⤵
        
        PID:9452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        380⤵
        
        PID:9468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        381⤵
        
        PID:9484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        382⤵
        
        PID:9496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        383⤵
        
        PID:9516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        384⤵
        
        PID:9528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        385⤵
        
        PID:9548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        386⤵
        
        PID:9564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        387⤵
        
        PID:9580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        388⤵
        
        PID:9592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        389⤵
        
        PID:9608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        390⤵
        
        PID:9640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        391⤵
        
        PID:9664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        392⤵
        
        PID:9676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        393⤵
        
        PID:9688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        394⤵
        
        PID:9704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        395⤵
        
        PID:9720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        396⤵
        
        PID:9740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        397⤵
        
        PID:9756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        398⤵
        
        PID:9772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        399⤵
        
        PID:9784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        400⤵
        
        PID:9804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        401⤵
        
        PID:9820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        402⤵
        
        PID:9836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        403⤵
        
        PID:9852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        404⤵
        
        PID:9868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        405⤵
        
        PID:9880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        406⤵
        
        PID:9896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        407⤵
        
        PID:9912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        408⤵
        
        PID:9924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        409⤵
        
        PID:9940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        410⤵
        
        PID:9956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        411⤵
        
        PID:9972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        412⤵
        
        PID:9984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        413⤵
        
        PID:10000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        414⤵
        
        PID:10016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        415⤵
        
        PID:10032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        416⤵
        
        PID:10048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        417⤵
        
        PID:10064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        418⤵
        
        PID:10080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        419⤵
        
        PID:10096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        420⤵
        
        PID:10112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        421⤵
        
        PID:10128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        422⤵
        
        PID:10144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        423⤵
        
        PID:10164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        424⤵
        
        PID:10188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        425⤵
        
        PID:10204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        426⤵
        
        PID:10216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        427⤵
        
        PID:10232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        428⤵
        
        PID:8800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        429⤵
        
        PID:10248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        430⤵
        
        PID:10260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        431⤵
        
        PID:10280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        432⤵
        
        PID:10296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        433⤵
        
        PID:10312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        434⤵
        
        PID:10328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        435⤵
        
        PID:10344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        436⤵
        
        PID:10360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        437⤵
        
        PID:10376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        438⤵
        
        PID:10392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        439⤵
        
        PID:10404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        440⤵
        
        PID:10420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        441⤵
        
        PID:10452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        442⤵
        
        PID:10468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        443⤵
        
        PID:10480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        444⤵
        
        PID:10496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        445⤵
        
        PID:10512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        446⤵
        
        PID:10528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        447⤵
        
        PID:10544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        448⤵
        
        PID:10560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        449⤵
        
        PID:10576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        450⤵
        
        PID:10596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        451⤵
        
        PID:10616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        452⤵
        
        PID:10628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        453⤵
        
        PID:10644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        454⤵
        
        PID:10664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        455⤵
        
        PID:10684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        456⤵
        
        PID:10704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        457⤵
        
        PID:10716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        458⤵
        
        PID:10732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        459⤵
        
        PID:10748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        460⤵
        
        PID:10764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        461⤵
        
        PID:10776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        462⤵
        
        PID:10792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        463⤵
        
        PID:10804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        464⤵
        
        PID:10824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        465⤵
        
        PID:10840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        466⤵
        
        PID:10856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        467⤵
        
        PID:10868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        468⤵
        
        PID:10884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        469⤵
        
        PID:10900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        470⤵
        
        PID:10912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        471⤵
        
        PID:10924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        472⤵
        
        PID:10940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        473⤵
        
        PID:10956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        474⤵
        
        PID:10972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        475⤵
        
        PID:10988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        476⤵
        
        PID:11004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        477⤵
        
        PID:11016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        478⤵
        
        PID:11032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        479⤵
        
        PID:11048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        480⤵
        
        PID:11064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        481⤵
        
        PID:11076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        482⤵
        
        PID:11096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        483⤵
        
        PID:11108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        484⤵
        
        PID:11124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        485⤵
        
        PID:11136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        486⤵
        
        PID:11156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        487⤵
        
        PID:11168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        488⤵
        
        PID:11180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        489⤵
        
        PID:11196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        490⤵
        
        PID:11208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        491⤵
        
        PID:11228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        492⤵
        
        PID:11240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        493⤵
        
        PID:11256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        494⤵
        
        PID:1596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        495⤵
        
        PID:5536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        496⤵
        
        PID:5540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        497⤵
        
        PID:864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        498⤵
        
        PID:3164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        499⤵
        
        PID:10676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        500⤵
        
        PID:11272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        501⤵
        
        PID:11288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        502⤵
        
        PID:11308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        503⤵
        
        PID:11324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        504⤵
        
        PID:11336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        505⤵
        
        PID:11356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        506⤵
        
        PID:11372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        507⤵
        
        PID:11388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        508⤵
        
        PID:11404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        509⤵
        
        PID:11416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        510⤵
        
        PID:11436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        511⤵
        
        PID:11452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        512⤵
        
        PID:11468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        513⤵
        
        PID:11484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        514⤵
        
        PID:11500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        515⤵
        
        PID:11516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        516⤵
        
        PID:11532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        517⤵
        
        PID:11544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        518⤵
        
        PID:11564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        519⤵
        
        PID:11576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        520⤵
        
        PID:11592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        521⤵
        
        PID:11608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        522⤵
        
        PID:11620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        523⤵
        
        PID:11640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        524⤵
        
        PID:11656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        525⤵
        
        PID:11672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        526⤵
        
        PID:11688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        527⤵
        
        PID:11704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        528⤵
        
        PID:11720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        529⤵
        
        PID:11736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        530⤵
        
        PID:11748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        531⤵
        
        PID:11764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        532⤵
        
        PID:11780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        533⤵
        
        PID:11796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        534⤵
        
        PID:11812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        535⤵
        
        PID:11828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        536⤵
        
        PID:11844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        537⤵
        
        PID:11860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        538⤵
        
        PID:11876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        539⤵
        
        PID:11892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        540⤵
        
        PID:11904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        541⤵
        
        PID:11920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        542⤵
        
        PID:11932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        543⤵
        
        PID:11948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        544⤵
        
        PID:11964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        545⤵
        
        PID:11976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        546⤵
        
        PID:11988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        547⤵
        
        PID:12000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        548⤵
        
        PID:12012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        549⤵
        
        PID:12028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        550⤵
        
        PID:12044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        551⤵
        
        PID:12056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        552⤵
        
        PID:12072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        553⤵
        
        PID:12088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        554⤵
        
        PID:12104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        555⤵
        
        PID:12116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        556⤵
        
        PID:12128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        557⤵
        
        PID:12144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        558⤵
        
        PID:12160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        559⤵
        
        PID:12176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        560⤵
        
        PID:12188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        561⤵
        
        PID:12200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        562⤵
        
        PID:12212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        563⤵
        
        PID:12228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        564⤵
        
        PID:12240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        565⤵
        
        PID:12256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        566⤵
        
        PID:12268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        567⤵
        
        PID:12284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        568⤵
        
        PID:5828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        569⤵
        
        PID:12300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        570⤵
        
        PID:12312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        571⤵
        
        PID:12328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        572⤵
        
        PID:12344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        573⤵
        
        PID:12360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        574⤵
        
        PID:12376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        575⤵
        
        PID:12388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        576⤵
        
        PID:12404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        577⤵
        
        PID:12416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        578⤵
        
        PID:12436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        579⤵
        
        PID:12448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        580⤵
        
        PID:12464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        581⤵
        
        PID:12480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        582⤵
        
        PID:12492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        583⤵
        
        PID:12504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        584⤵
        
        PID:12520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        585⤵
        
        PID:12536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        586⤵
        
        PID:12552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        587⤵
        
        PID:12568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        588⤵
        
        PID:12584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        589⤵
        
        PID:12600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        590⤵
        
        PID:12616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        591⤵
        
        PID:12632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        592⤵
        
        PID:12648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        593⤵
        
        PID:12664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        594⤵
        
        PID:12680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        595⤵
        
        PID:12696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        596⤵
        
        PID:12712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        597⤵
        
        PID:12728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        598⤵
        
        PID:12740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        599⤵
        
        PID:12752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        600⤵
        
        PID:12772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        601⤵
        
        PID:12788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        602⤵
        
        PID:12804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        603⤵
        
        PID:12820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        604⤵
        
        PID:12836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        605⤵
        
        PID:12852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        606⤵
        
        PID:12864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        607⤵
        
        PID:12880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        608⤵
        
        PID:12896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        609⤵
        
        PID:12912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        610⤵
        
        PID:12924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        611⤵
        
        PID:12940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        612⤵
        
        PID:12952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        613⤵
        
        PID:12972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        614⤵
        
        PID:12988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        615⤵
        
        PID:13000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        616⤵
        
        PID:13020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        617⤵
        
        PID:13036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        618⤵
        
        PID:13052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        619⤵
        
        PID:13068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        620⤵
        
        PID:13084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        621⤵
        
        PID:13096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        622⤵
        
        PID:13112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        623⤵
        
        PID:13128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        624⤵
        
        PID:13144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        625⤵
        
        PID:13160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        626⤵
        
        PID:13172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        627⤵
        
        PID:13188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        628⤵
        
        PID:13208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        629⤵
        
        PID:13224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        630⤵
        
        PID:13236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        631⤵
        
        PID:13256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        632⤵
        
        PID:13268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        633⤵
        
        PID:13284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        634⤵
        
        PID:13296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        635⤵
        
        PID:13316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        636⤵
        
        PID:13328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        637⤵
        
        PID:13348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        638⤵
        
        PID:13360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        639⤵
        
        PID:13380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        640⤵
        
        PID:13396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        641⤵
        
        PID:13412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        642⤵
        
        PID:13428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        643⤵
        
        PID:13440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        644⤵
        
        PID:13456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        645⤵
        
        PID:13468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        646⤵
        
        PID:13484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        647⤵
        
        PID:13500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        648⤵
        
        PID:13512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        649⤵
        
        PID:13528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        650⤵
        
        PID:13544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        651⤵
        
        PID:13560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        652⤵
        
        PID:13572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        653⤵
        
        PID:13592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        654⤵
        
        PID:13608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        655⤵
        
        PID:13624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        656⤵
        
        PID:13640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        657⤵
        
        PID:13652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        658⤵
        
        PID:13668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        659⤵
        
        PID:13680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        660⤵
        
        PID:13696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        661⤵
        
        PID:13712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        662⤵
        
        PID:13728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        663⤵
        
        PID:13740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        664⤵
        
        PID:13760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        665⤵
        
        PID:13776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        666⤵
        
        PID:13792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        667⤵
        
        PID:13808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        668⤵
        
        PID:13824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        669⤵
        
        PID:13840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        670⤵
        
        PID:13856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        671⤵
        
        PID:13868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        672⤵
        
        PID:13884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        673⤵
        
        PID:13900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        674⤵
        
        PID:13912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        675⤵
        
        PID:13928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        676⤵
        
        PID:13944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        677⤵
        
        PID:13956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        678⤵
        
        PID:13972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        679⤵
        
        PID:13988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        680⤵
        
        PID:14004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        681⤵
        
        PID:14020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        682⤵
        
        PID:14032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        683⤵
        
        PID:14048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        684⤵
        
        PID:14064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        685⤵
        
        PID:14076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        686⤵
        
        PID:14096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        687⤵
        
        PID:14112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        688⤵
        
        PID:14128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        689⤵
        
        PID:14140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        690⤵
        
        PID:14160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        691⤵
        
        PID:14176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        692⤵
        
        PID:14188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        693⤵
        
        PID:14208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        694⤵
        
        PID:14220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        695⤵
        
        PID:14240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        696⤵
        
        PID:14256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        697⤵
        
        PID:14272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        698⤵
        
        PID:14284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        699⤵
        
        PID:14300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        700⤵
        
        PID:14316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        701⤵
        
        PID:14328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        702⤵
        
        PID:14348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        703⤵
        
        PID:14360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        704⤵
        
        PID:14376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        705⤵
        
        PID:14396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        706⤵
        
        PID:14412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        707⤵
        
        PID:14428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        708⤵
        
        PID:14440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        709⤵
        
        PID:14456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        710⤵
        
        PID:14472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        711⤵
        
        PID:14484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        712⤵
        
        PID:14496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        713⤵
        
        PID:14512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        714⤵
        
        PID:14528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        715⤵
        
        PID:14544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        716⤵
        
        PID:14556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        717⤵
        
        PID:14572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        718⤵
        
        PID:14588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        719⤵
        
        PID:14604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        720⤵
        
        PID:14616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        721⤵
        
        PID:14636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        722⤵
        
        PID:14652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        723⤵
        
        PID:14664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        724⤵
        
        PID:14680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        725⤵
        
        PID:14692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        726⤵
        
        PID:14708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        727⤵
        
        PID:14724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        728⤵
        
        PID:14736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        729⤵
        
        PID:14752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        730⤵
        
        PID:14764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        731⤵
        
        PID:14776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        732⤵
        
        PID:14788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        733⤵
        
        PID:14800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        734⤵
        
        PID:14816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        735⤵
        
        PID:14828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        736⤵
        
        PID:14844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        737⤵
        
        PID:14860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        738⤵
        
        PID:14876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        739⤵
        
        PID:14892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        740⤵
        
        PID:14908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        741⤵
        
        PID:14924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        742⤵
        
        PID:14940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        743⤵
        
        PID:14956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        744⤵
        
        PID:14972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        745⤵
        
        PID:14988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        746⤵
        
        PID:15000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        747⤵
        
        PID:15020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        748⤵
        
        PID:15036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        749⤵
        
        PID:15052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        750⤵
        
        PID:15064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        751⤵
        
        PID:15084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        752⤵
        
        PID:15100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        753⤵
        
        PID:15112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        754⤵
        
        PID:15128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        755⤵
        
        PID:15144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        756⤵
        
        PID:15156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        757⤵
        
        PID:15168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        758⤵
        
        PID:15184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        759⤵
        
        PID:15200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        760⤵
        
        PID:15216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        761⤵
        
        PID:15228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        762⤵
        
        PID:15244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        763⤵
        
        PID:15260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        764⤵
        
        PID:15276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        765⤵
        
        PID:15292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        766⤵
        
        PID:15308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        767⤵
        
        PID:15324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        768⤵
        
        PID:15336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        769⤵
        
        PID:15352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        770⤵
        
        PID:15368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        771⤵
        
        PID:15384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        772⤵
        
        PID:15400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        773⤵
        
        PID:15416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        774⤵
        
        PID:15432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        775⤵
        
        PID:15444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        776⤵
        
        PID:15464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        777⤵
        
        PID:15480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        778⤵
        
        PID:15492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        779⤵
        
        PID:15508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        780⤵
        
        PID:15528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        781⤵
        
        PID:15544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        782⤵
        
        PID:15560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        783⤵
        
        PID:15576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        784⤵
        
        PID:15588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        785⤵
        
        PID:15608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        786⤵
        
        PID:15624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        787⤵
        
        PID:15640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        788⤵
        
        PID:15652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        789⤵
        
        PID:15672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        790⤵
        
        PID:15688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        791⤵
        
        PID:15704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        792⤵
        
        PID:15716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        793⤵
        
        PID:15728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        794⤵
        
        PID:15744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        795⤵
        
        PID:15756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        796⤵
        
        PID:15776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        797⤵
        
        PID:15792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        798⤵
        
        PID:15808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        799⤵
        
        PID:15820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        800⤵
        
        PID:15836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        801⤵
        
        PID:15852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        802⤵
        
        PID:15868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        803⤵
        
        PID:15884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        804⤵
        
        PID:15900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        805⤵
        
        PID:15916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        806⤵
        
        PID:15932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        807⤵
        
        PID:15948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        808⤵
        
        PID:15960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        809⤵
        
        PID:15980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        810⤵
        
        PID:15992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        811⤵
        
        PID:16008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        812⤵
        
        PID:16024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        813⤵
        
        PID:16040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        814⤵
        
        PID:16056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        815⤵
        
        PID:16068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        816⤵
        
        PID:16088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        817⤵
        
        PID:16104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        818⤵
        
        PID:16120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        819⤵
        
        PID:16132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        820⤵
        
        PID:16148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        821⤵
        
        PID:16160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        822⤵
        
        PID:16176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        823⤵
        
        PID:16192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        824⤵
        
        PID:16204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        825⤵
        
        PID:16228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        826⤵
        
        PID:16240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        827⤵
        
        PID:16256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        828⤵
        
        PID:16268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        829⤵
        
        PID:16292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        830⤵
        
        PID:16308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        831⤵
        
        PID:16328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        832⤵
        
        PID:16344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        833⤵
        
        PID:16360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        834⤵
        
        PID:16372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        835⤵
        
        PID:4612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        836⤵
        
        PID:16388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        837⤵
        
        PID:16400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        838⤵
        
        PID:16416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        839⤵
        
        PID:16432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        840⤵
        
        PID:16448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        841⤵
        
        PID:16460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        842⤵
        
        PID:16480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        843⤵
        
        PID:16496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        844⤵
        
        PID:16512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        845⤵
        
        PID:16524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        846⤵
        
        PID:16540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        847⤵
        
        PID:16552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        848⤵
        
        PID:16568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        849⤵
        
        PID:16584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        850⤵
        
        PID:16596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        851⤵
        
        PID:16608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        852⤵
        
        PID:16628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        853⤵
        
        PID:16644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        854⤵
        
        PID:16660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        855⤵
        
        PID:16672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        856⤵
        
        PID:16684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        857⤵
        
        PID:16700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        858⤵
        
        PID:16716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        859⤵
        
        PID:16732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        860⤵
        
        PID:16744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        861⤵
        
        PID:16764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        862⤵
        
        PID:16780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        863⤵
        
        PID:16792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        864⤵
        
        PID:16808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        865⤵
        
        PID:16824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        866⤵
        
        PID:16840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1416-57-0x00000000001A0000-0x00000000001C2000-memory.dll,#1
        867⤵
        
        PID:16856

Windows 7 deprecation

Loading Replay Monitor...

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads